Phishing

(get it in RSS or Atom)

Apple puts a stop to invoice poisoning bug

Apple

The vulnerability posed "a significant risk to buyers, sellers or Apple website managers/developers".

What's keeping security experts awake at night?

What's keeping you awake at night? Gartner polls top-level security experts

Enterprises will pour more than $71 billion into infosec this year but are still getting clobbered by Sony-esque level breaches. Why? They're not focusing on the real threats.

Fed up with losing email to your spam folder? Gmail’s artificial intelligence wants to help

Google arms bulk senders with spam smarts in Gmail Postmaster Tools

Google is arming bulk email senders with spam smarts so that you get more of the emails you want and spend less time dumpster-diving for missing email.

Cybersquatters giving some US presidential candidates a bad name

Cybersquatters giving some US presidential candidates a bad name

Cybersquatters have caused some embarrassment for several of the US presidential contenders. But abuse of domain names can be costly for businesses and dangerous for consumers.

Spearphishing gets personal as woman scammed out of £50k house deposit

Spearphishing gets personal as woman scammed out of £50k house deposit

Spearphishing isn't just a threat for businesses. As this case shows, thieves are willing to spend considerable effort prying into the lives and email of ordinary people in the hope of scoring big cash.

Police break up romance scam gang that fleeced women of $1.5 million

online-dating-scam-1200

York Regional Police in Canada this week announced the arrest of nine men who allegedly targeted women on dating websites, and conned seven victims out of a total of $1.5 million.

The romance scammer's outward demonstrations of love must conceal a dark heart ...

49 busted in Europe for Man-in-the-Middle bank attacks

49 busted in Europe for Man-in-the-Middle bank attacks

A multination bust nabbed 49 people on suspicion of using Man-in-the-Middle attacks to sniff out and intercept payment requests from email.

Feds seize man's computers in raids connected to celebrity nude photo hack

Feds seize Chicago man's computers in raids connected to Celebgate

The FBI's investigation points to a ring of thieves who used phishing and password-reset scams to crack celebrities' iCloud and email accounts and steal nude images.

You'll never need to say "I'm on a train" again - 60 Sec Security [VIDEO]

Here's our latest "60 Second Security" security news roundup video - fun with a serious side.

Twin brothers accused of leading phishing gang busted by Russian police

Twin brothers accused of leading phishing gang busted by Russian police

The twins had purchased an armored door for their apartment, and they set up text message alerts to warn their associates to destroy evidence once the police showed up.

It wasn't enough to keep the cops out, or themselves out of jail.

Phishing study finds major brands heavily targeted, niche sites also at risk

Phishing study finds major brands heavily targeted, niche sites also at risk

Phishers are regularly updating their approaches, probing new areas and looking out for new victims, as well as taking aim at larger global players and their users.

Adult FriendFinder hacked, users' intimate details exposed on Dark Web

online-dating-1200

Adult FriendFinder, a website billed as a way for people to "find friends, sex, flings and hookups," has had a serious data breach. Now millions of people who thought they were using a discrete service to find casual sex have had their private information exposed online.

Firewall for dummies - or, what do we mean by a next-generation firewall?

faulty-firewall-deadly-sin-250

A next-generation firewall offers more protection than a traditional firewall as it can look inside content, rather than just blocking based on sources and destination.

Google unveils Password Alert Chrome extension, an early warning system against phishing attacks

Google developers have created Password Alert, an open-source Chrome extension that aims to protect users from phishing attacks.

More iCloud phishing: don't get sucked in

It's easy to justify checking out spams and scams, on the "better safe than sorry" principle.

Don't do it!

You just end up one click closer to catastrophe.

Psychological profile-based security - could it work?

Image of psychedelic background brain courtesy of Shutterstock.

Fujitsu's working on technology that can assign security countermeasures based on a user's psychological profile and risk tendencies - warning them ahead of time, before an attack can be carried out successfully.

"Obamacare" phishing email leads to banking malware‏

dol-fake-250

Unfortunately, official emails and web bulletins are a handy source of believable content for scammers.

This time, it's a Department of Labor bulletin "borrowed" to help distributed a variant of the infamous Vawtrak banking malware.

Phish of the Week - when adjectives just aren't enough

We aren't really supposed to chuckle at spams and scams.

But here's a phishing story that will make you smile yet still be educational...

SSCC 179 - What kind of a name is "Lizard Squad"? [PODCAST]

Here's the latest episode of our regular security podcast.

This week: phishing, spamming, zombification, SCADA and the Internet of Things, and the curiously named cybervandals that go by "Lizard Squad."